Adobe has released four advisories addressing 29 vulnerabilities (16 Critical) in Adobe Acrobat and Reader, Adobe Dimension, InCopy, and InDesign.
An attacker could exploit these vulnerabilities and potentially take over impacted systems.
Adobe has released four security bulletins for the following products that address security vulnerabilities (along with number of Critical flaws):
- Adobe Acrobat and Reader (for Windows and macOS): APSB23-01 (8 Critical)
- Adobe InDesign APSB23-07 (4 Critical)
- Adobe InCopy APSB23-08 (4 Critical)
- Adobe Dimension APSB23-10 (0 Critical).
Regarding Acrobat and Reader, Adobe warned “successful exploitation could lead to application denial-of-service, arbitrary code execution, privilege escalation and memory leak.”
None of the advisories had listed any known public exploits of the vulnerabilities.
- Microsoft January 2023 Security Updates addresses 98 vulnerabilities (11 rated Critical)
- Google releases Chrome OS security updates with fixes for 5 High severity vulnerabilities
- Microsoft disables Basic authentication in Exchange Online to fight password spray attacks
- Microsoft update for Microsoft Exchange Server zero-day vulnerabilities